Module `refinery.units.formats.pe.peoverlay`

Expand source code Browse git

from __future__ import annotations

from refinery.units.formats.pe import OverlayUnit


class peoverlay(OverlayUnit):
    """
    Return the overlay of a PE file.

    Returns anything that may have been appended to the file. This does not include digital
    signatures. Use `refinery.pestrip` to obtain only the body of the PE file after removing
    the overlay.
    """
    def process(self, data: bytearray) -> bytearray:
        size = self._get_size(data)
        try:
            data[:size] = []
        except Exception:
            return data[size:]
        else:
            return data

Classes

class peoverlay (certificate=False, directories=False, memdump=False)

Return the overlay of a PE file.

Returns anything that may have been appended to the file. This does not include digital signatures. Use pestrip to obtain only the body of the PE file after removing the overlay.

Expand source code Browse git

class peoverlay(OverlayUnit):
    """
    Return the overlay of a PE file.

    Returns anything that may have been appended to the file. This does not include digital
    signatures. Use `refinery.pestrip` to obtain only the body of the PE file after removing
    the overlay.
    """
    def process(self, data: bytearray) -> bytearray:
        size = self._get_size(data)
        try:
            data[:size] = []
        except Exception:
            return data[size:]
        else:
            return data

Ancestors

Subclasses

peoverlay

Class variables

var reverse: The type of the None singleton.

Inherited members

OverlayUnit:
- FilterEverything
- Requires
- act
- assemble
- codec
- console
- filter
- finish
- handles
- is_quiet
- is_reversible
- isatty
- labelled
- leniency
- log_always
- log_debug
- log_detach
- log_fail
- log_info
- log_level
- log_warn
- logger
- name
- nozzle
- optional_dependencies
- process
- read
- read1
- required_dependencies
- reset
- run
- source
- superinit